From owner-freebsd-hackers  Mon Nov 13 11:56:47 2000
Delivered-To: freebsd-hackers@freebsd.org
Received: from krell.webweaver.net (krell.webweaver.net [206.24.105.170])
	by hub.freebsd.org (Postfix) with ESMTP id 2994E37B479
	for <freebsd-hackers@FreeBSD.ORG>; Mon, 13 Nov 2000 11:56:38 -0800 (PST)
Received: from xwin.nmhtech.com (xwin.nmhtech.com [208.138.46.10])
	by krell.webweaver.net (Postfix) with ESMTP
	id 2A6AA20F12; Mon, 13 Nov 2000 11:42:01 -0800 (PST)
Content-Length: 4054
Message-ID: <XFMail.001113115637.nicole@daemontech.com>
X-Mailer: XFMail 1.4.0 on FreeBSD
X-Priority: 3 (Normal)
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 8bit
MIME-Version: 1.0
In-Reply-To: <20001113111837.J622@beastie.localdomain>
Date: Mon, 13 Nov 2000 11:56:37 -0700 (PST)
From: Nicole H <nicole@daemontech.com>
To: "Brian O'Shea" <boshea@ricochet.net>
Subject: Re: Log analysis program running under apache reboots server!
Cc: freebsd-hackers@FreeBSD.ORG
Sender: owner-freebsd-hackers@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG


On 13-Nov-00 Brian O'Shea wrote:
> Nicole,
> 
> Is it a panic, or does it just silently reboot?  If it's a panic,
> what is the panic message, or any other message on the console when
> the system crashes?  Also, can you get a crash dump? (see the
> dumpon(8) man page)
> 
> -brian
> 

 Silent reboot :(


  Nicole


> 
> On Mon, Nov 13, 2000 at 10:58:39AM -0800, Nicole Harrington wrote:
>> Greetings all.. 
>> 
>>   I have been trying to test an apache log analizing program called
>>   Nettracker
>>  (wwww.sane.com) the program seems nice except for the fact that it keeps
>>  rebooting/crashing the server. This would just be labeled crappy software
>>  except for the fact that I am running the software as user apache and have
>> setup process limits in login.conf and it is still able to reboot the
>> server.
>>  
>>   This seems like a real problem and security issue as I have setup limits
>>   in
>>  /etc/login.conf (see below) and the program is being run via CGI as user
>>  apache, yet it is still capable of rebooting the system. Seems like a nice
>>  hack
>>  to me.
>>  
>>   If anyone could check over my  login.conf settings below and make sure
>>   they
>>  are
>>  correct/ truly usefull, I would really appreciate it! Also any information
>>  on
>>  how this program could so easily reboot the server would be nice too.
>>  
>>    Thanks!!
>>  
>>  
>>     Nicole
>>  
>>  System is 4.1-STABLE and has 256 Megs of memory and 4X that of swap.
>>  
>>  apacheuser:\
>>          :manpath=/usr/share/man /usr/X11R6/man /usr/local/man:\
>>          :cputime=4h:\
>>          :datasize=64M:\
>>          :stacksize=4M:\
>>          :filesize=infinity:\
>>          :memoryuse=64M:\
>>          :priority=0:\
>>         :datasize-cur=32M:\
>>         :stacksize-cur=32M:\
>>         :coredumpsize-cur=0:\
>>         :maxmemorysize-cur=64M:\
>>         :memorylocked=32M:\
>>         :maxproc=128:\
>>         :openfiles=256:\
>>          :tc=standard:
>>  
>> ## standard - standard user defaults
>> ##
>>  standard:\
>>          :copyright=/etc/COPYRIGHT:\
>>          :welcome=/etc/motd:\
>>          :setenv=MAIL=/var/mail/$,BLOCKSIZE=K:\
>>          :path=~/bin /bin /usr/bin /usr/local/bin:\
>>          :manpath=/usr/share/man /usr/local/man:\
>>          :nologin=/var/run/nologin:\
>>          :cputime=1h30m:\
>>          :datasize=8M:\
>>          :stacksize=2M:\
>>          :memorylocked=4M:\
>>          :memoryuse=8M:\
>>          :filesize=8M:\
>>          :coredumpsize=8M:\
>>          :openfiles=24:\
>>          :maxproc=32:\
>>          :priority=0:\
>>          :requirehome:\
>>          :passwordtime=90d:\
>>          :umask=002:\
>>          :ignoretime@:\
>>          :tc=default:
>>  
>>  default:\
>>          :cputime=infinity:\
>>          :datasize-cur=22M:\
>>          :stacksize-cur=8M:\
>>          :memorylocked-cur=10M:\
>>          :memoryuse-cur=30M:\
>>          :filesize=infinity:\
>>          :coredumpsize=infinity:\
>>          :maxproc-cur=64:\
>>          :openfiles-cur=64:\
>>          :priority=0:\
>>          :requirehome@:\
>>          :umask=022:\
>>  
>>  
>> 
>> 
>> 
>> To Unsubscribe: send mail to majordomo@FreeBSD.org
>> with "unsubscribe freebsd-hackers" in the body of the message
> 
> -- 
> Brian O'Shea
> boshea@ricochet.net
> 
> 
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-hackers" in the body of the message

 nicole@unixgirl.com         |\ __ /|   (`\   http://www.unixgirl.com/
 webmistress@dangermouse.org | o_o  |__  ) )  http://www.dangermouse.org/
 nicole@deviantimages.com   //      \\        http://www.deviantimages.com/     
 
---------------------------(((---(((-----------------------------------------
 
              --  Powered by Coka-Cola and FreeBSD  --
         -- Strong as any man - made for a Woman --
              --  "I drank WHAT ?!" - Socrates -- 
 Hmm You seem better - "been giving myself shock treatments" Up the Voltage!
-----------------------------------------------------------------------------
 


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message